Hacker News new | ask | show | jobs
by Quarrelsome 4589 days ago
> Due to a bug in our third-party network library the certificates were not being verified so a self signed certificate could decrypt the data.

Finally, now the TC article makes sense. Someone told me the guy that found the exploit works for one of your competitors. ;).
1 comments
skj 4589 days ago
You mean, the author of the article who disclosed that from the beginning?
link
Quarrelsome 4589 days ago
Ah I didn't notice the disclosure so much as I skimmed the start looking for the technical details. Still strikes me as somewhat cynical though.
link